Our website address is: https://www.briidea.co.uk.
If you use our contact form, we capture your email and name when you submit the contact form and keep it whilst your remain in contact with us. We do not use the information submitted for marketing purposes.
The legal basis for this processing is consent.
We may process data enabling us to get in touch with you. This may include your name, email address, telephone number, postal address and/or social media account identifiers. The source of the contact data is you.
The legal basis for this processing is consent.
If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select "Remember Me", your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
Briidea Ltd uses the "Facebook Pixel", a product of the social network Facebook.
The data collected is anonymous to Briidea Ltd, and Briidea Ltd cannot determine the identity of the users. The data is however stored and processed by Facebook, so that a connection to the respective user profile is possible and Facebook can use the data for its own advertising purposes, according to the Facebook privacy policy and the Facebook user’s profile settings. Visitors can opt out of using the facebook pixel.
For more details of our cookie policy, visit: https://briidea.co.uk/cookie-policy/
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.
We use Google Analytics. Google Analytics gathers information about the use of our website by means of cookies. The information gathered is used to create reports about the use of our website. You can find out more about Google's use of information by visiting https://www.google.com/policies/privacy/partners/ and you can review Google's privacy policy at https://policies.google.com/privacy. Please see our cookie policy for more details.
The legal basis for this processing is consent.
We share information with third parties who help us provide our orders and store services to you; for example --
We accept payments through PayPal. When processing payments, some of your data will be passed to PayPal, including information required to process or support the payment, such as the purchase total and billing information.
Please see the PayPal Privacy Policy for more details.
For email broadcast purposes your email address will be added to our third party cloud-based delivery system (SendInBlue). Your data is not subject to any form of additional processing and is not shared with any third party. The SendInBlue servers are located within France and the organisation is itself bound by GDPR regulations relating to data processing and security. Further information on SendInBlue's compliance can be found at https://www.sendinblue.com/legal/privacypolicy/
The legal basis for this processing is consent via our contact form.
The IP address of visitors, user ID of logged in users, and username of login attempts are conditionally logged to check for malicious activity and to protect the site from specific kinds of attacks. Examples of conditions when logging occurs include login attempts, log out requests, requests for suspicious URLs, changes to site content, and password updates. This information is retained for 60 days.
This site is scanned for potential malware and vulnerabilities by Sucuri's SiteCheck. We do not send personal information to Sucuri; however, Sucuri could find personal information posted publicly (such as in comments) during their scan. For more details, please see Sucuri's privacy policy.
The legal basis of this processing is our legitimate interests, namely the protection of our website, services and business, and the protection of others.
We may process contact data, account data and/or transaction data for the purposes of creating, targeting and sending direct marketing communications by email, SMS, post and/or fax and making contact by telephone for marketing-related purposes. The legal basis for this processing is consent.
Your personal data held in our website database will be stored on the servers of our hosting services providers https://www.heartinternet.uk/, backups are made using Microsoft Services and stored on UK based servers. The legal basis for this processing is our legitimate interests, namely ensuring that we have access to all the information we need to properly and efficiently run our business in accordance with this policy.
Financial transactions relating to the store are handled by our payment services providers, Paypal. Please see above for details
Maintaining insurance cover, managing risk and obtaining professional device - the legal basis for this processing is our legitimate interests, namely the proper protection of our business against risks.
Defence of initiation of legal claims - The legal basis for this processing is our legitimate interests, namely the protection of our legal rights, your legal rights and the legal rights of others.
To meet any legal obligations, in order to protect the vital interests of you or others.
Personal data that we process shall not be kept for longer than is necessary.
Specifically, we will retain your personal data as follows:
Your principal rights under data protection law are:
You can learn more about the rights of data subjects by visiting https://ico.org.uk/for-organisations/guide-to-data-protection/guide-to-the-general-data-protection-regulation-gdpr/individual-rights/.
These rights are subject to certain exceptions.
You may exercise any of your rights in relation to your personal data by written notice to us, using the contact details set out below.
We use encryption, backup, security on both the website and the website server.
We have a data breach process, that records any data breaches and notifies the relevant authorities within 72 hours of the breach occurring.
We may update this policy from time to time by publishing a new version on our website.
You should check this page occasionally to ensure you are happy with any changes to this policy.
The data protection officer can be contacted via charles@briidea.co.uk
This website is owned and operated by Briidea Ltd
Our principal place of business is at 10 Hannah Lodge, 148 Palatine Road, West Didsbury. Manchester
You can contact us:
(a) by post, to the postal address given above
(b) using our website contact form;
(c) by telephone, on the contact number published on our website; or
(d) by email, using the email address published on our website.
